The WriteOnePNGImage function in coders/png.c in ImageMagick in 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. Upstream bug: https://github.com/ImageMagick/ImageMagick/issues/586 Upstream patch: https://github.com/ImageMagick/ImageMagick/commit/816ecab6c532ae086ff4186b3eaf4aa7092d536f References: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869209